All news in category "Vendor and Hyperscaler Watch"

AWS Transfer Family Web Apps Support VPC Endpoints

🔒 AWS Transfer Family web apps now support Virtual Private Cloud (VPC) endpoints, enabling private, in‑VPC access to your browser-based S3 file interface at no additional charge. Workforce users can connect through a VPC, AWS Direct Connect, or VPN so that file traffic remains inside your network boundary. Administrators can enforce controls with security groups and subnet-level NACLs, retaining full visibility and control over transfers. Configure and manage endpoints via the Transfer Family console, AWS CLI, or SDK.

AWS Announces Amazon ECS Express Mode for Fast Deploys

🚀 Amazon Web Services today introduced Amazon ECS Express Mode, a managed deployment option that helps developers rapidly launch containerized web applications and APIs with minimal configuration. Every Express Mode service is assigned an AWS‑provided domain and supports public or private HTTPS, autoscaling, and ALB-based traffic distribution. The feature can consolidate up to 25 Express Mode services behind a single Application Load Balancer while preserving isolation through intelligent rule-based routing. All provisioned resources remain in your AWS account and are fully accessible; Express Mode is available now in all AWS Regions at no additional service charge — you pay only for the underlying AWS resources used.

Amazon ECS and EKS Add AI-Powered Troubleshooting in Console

🔍 The AWS Management Console now integrates Amazon Q Developer AI-assisted troubleshooting directly into Amazon ECS and Amazon EKS. Contextual 'Inspect with Amazon Q' controls appear alongside error and status messages to gather relevant logs and metrics, analyze root causes, and present one-click mitigation suggestions. The experience covers failed tasks, container health checks, deployment rollbacks, cluster and node health, and Kubernetes pod events, and is available in all AWS commercial regions.

Amazon SES Now Available in Malaysia and Canada West

📧 Amazon Simple Email Service (Amazon SES) is now available in the Asia Pacific (Malaysia) and Canada West (Calgary) AWS Regions. This expansion lets customers send marketing, notification, and transactional emails from local AWS infrastructure, helping reduce latency and address data sovereignty and residency needs. Amazon SES, a scalable and cost-effective cloud email service, is now offered across 29 AWS Regions worldwide.

Amazon RDS for Oracle SE2 License Included in Taipei

📢 Amazon RDS for Oracle now offers Oracle Database Standard Edition 2 (SE2) License Included on R7i and M7i instances in the Asia Pacific (Taipei) region. Launched Nov 21, 2025, these License Included instances remove the need to purchase separate Oracle Database licenses and are available through the AWS Management Console, AWS CLI, and SDKs. There are no separate license or support charges. Review the Rethink Oracle Standard Edition Two on Amazon RDS for Oracle blog and Amazon RDS pricing for cost and regional availability.

AWS Network Firewall adds flexible cost allocation

🔁 AWS Network Firewall now supports flexible cost allocation through AWS Transit Gateway native attachments, enabling automatic distribution of data processing charges across different AWS accounts. Administrators can create metering policies to apply inspection charges to application teams or business units instead of consolidating expenses in the firewall owner account. This preserves centralized security controls while automating chargeback based on actual usage. Flexible cost allocation is available in all AWS Commercial and Amazon China Regions where supported, with no additional fees beyond standard service pricing.

ECR Dual-Stack Endpoints Gain AWS PrivateLink Support

🔒 Amazon Elastic Container Registry (ECR) now supports AWS PrivateLink for its dual-stack endpoints. This enables customers to standardize on IPv6 while continuing to accept IPv4 traffic, and to keep API and Docker/OCI request traffic confined to the Amazon network. By routing dual-stack endpoint traffic over PrivateLink, organizations can reduce exposure to the public internet and improve their security posture. The feature is generally available in all AWS commercial and GovCloud (US) regions at no additional cost.

Amazon WorkSpaces Applications Adds IPv6 Support Widely

🌐 Amazon WorkSpaces Applications now supports IPv6 for WorkSpaces Applications domains and external endpoints, allowing users on IPv6-capable devices to connect (SAML authentication is not supported over IPv6). This reduces the need for address-translation appliances, helps meet IPv6 compliance, and simplifies VPC addressing. The feature is available at no additional cost in 16 AWS Regions and uses pay-as-you-go pricing; customers must use the latest client or web access.

Amazon Connect Adds Multi-Skill Agent Scheduling Support

📞 Amazon Connect now supports multi-skill agent scheduling to optimize workforce allocation across departments, languages, and customer tiers. Using forecast-driven, skill-based matching, administrators can schedule agents who hold multiple specialties and reserve multi-skilled staff for high-value interactions when demand peaks. This capability is available in all AWS Regions where agent scheduling is offered and aims to raise utilization while reducing staffing gaps.

EC2 Fleet Adds Encryption Attribute for ABIS Selection

🔐 Amazon EC2 Fleet now supports an encryption attribute for Attribute-Based Instance Type Selection (ABIS). You can set RequireEncryptionInTransit in InstanceRequirements to limit launches to instance types that support encryption-in-transit, addressing compliance with VPC Encryption Controls in enforced mode. The GetInstanceTypesFromInstanceRequirements (GITFIR) API previews eligible instance types. The feature is available in all AWS commercial and GovCloud (US) Regions. To start, set RequireEncryptionInTransit=true when calling CreateFleet or GITFIR.

AWS Backup Adds Support for FSx Intelligent-Tiering

🔒 AWS Backup now supports Amazon FSx Intelligent-Tiering, enabling centralized protection for FSx for Lustre and FSx for OpenZFS file systems. The Intelligent-Tiering storage class delivers fully elastic file storage that automatically scales with workloads while optimizing costs through pay-for-what-you-use elasticity. Existing Amazon FSx backup plans continue to run without modification. Support is available in all Regions where FSx Intelligent-Tiering is offered, and you can manage protections from the AWS Backup console.

Amazon ECS Managed Instances Now in GovCloud Regions

🚀 Amazon ECS Managed Instances is now available in the AWS GovCloud (US-East) and GovCloud (US-West) Regions, bringing a fully managed EC2 compute option to government-focused accounts. Managed Instances dynamically scales and optimizes EC2 capacity, supports task-level requirements (vCPU, memory, CPU architecture), and lets you select instance families including GPU, network-optimized, and burstable types. AWS initiates security patching every 14 days; management fees apply in addition to EC2 costs.

AWS STS now supports dual‑stack IPv6 endpoints globally

🌐 AWS Security Token Service (STS) now supports IPv6 via new dual‑stack endpoints, allowing connections over IPv6, IPv4, or both. Dual‑stack access is supported over the public internet and privately from Amazon VPCs using AWS PrivateLink, so STS APIs can be invoked without traversing the public internet. This capability is available in all Commercial, GovCloud (US), and China Regions. Configure STS clients using the IAM user guide to enable dual‑stack endpoints.

Amazon Lex adds Wait & Continue in 10 new languages

🗣️ Amazon Lex now supports Wait & Continue in ten additional languages — Chinese, Japanese, Korean, Cantonese, Spanish, French, Italian, Portuguese, Catalan, and German. The feature enables deterministic voice and chat bots to pause while customers gather information and then resume the interaction seamlessly. It enhances natural, multilingual self-service experiences and is available in all AWS Regions where Amazon Lex operates.

AWS Load Balancers Add Post-Quantum TLS Key Exchange

🔐 AWS Application Load Balancers (ALB) and Network Load Balancers (NLB) now offer an opt-in post-quantum TLS (PQ-TLS) key exchange option. The new PQ-TLS security policies use hybrid key agreement that combines classical algorithms with post-quantum KEMs including the standardized ML-KEM, protecting against 'harvest now, decrypt later' attacks. Available at no extra cost across AWS Commercial, GovCloud (US), and China Regions, the feature requires explicit listener updates and supports monitoring via ALB connection logs and NLB access logs.

Amazon Aurora DSQL Adds Integrated Console Query Editor

🔎 Amazon has added an integrated query editor to Aurora DSQL, enabling secure, browser-based SQL access from the AWS Management Console without requiring external client installation or configuration. The editor includes syntax highlighting, auto-completion, and intelligent code assistance, along with schema exploration and result viewing in a single interface. Available in all Regions where Aurora DSQL is offered, this feature shortens time-to-value and simplifies database interactions for developers, analysts, and data engineers.

CloudWatch Console Adds Automated Agent Management

⚙️ Amazon CloudWatch now provides an in-console experience for automated installation and configuration of the CloudWatch agent on EC2 instances. The new UI surfaces agent status across your EC2 fleet, automatically detects supported workloads, and uses CloudWatch observability solutions to recommend monitoring configurations. Customers can deploy agents with one-click installs or create tag-based policies for automated fleet-wide management, including for auto-scaled instances, reducing setup time from hours to minutes.

AWS Security Incident Response Introduces Metered Pricing

🔒 AWS Security Incident Response introduces a metered pricing model that charges per ingested security finding and includes a free tier for the first 10,000 findings per month. After the free tier, the per-finding rate is $0.000676 with tiered discounts at higher volumes. The consumption-based approach removes upfront commitments and minimum fees, enabling teams to scale response capability as needs evolve. Customers can monitor finding counts via Amazon CloudWatch at no extra cost, and the new pricing automatically applies in supported Regions starting November 21, 2025.

Amazon QuickSight Adds Table and Pivot Table Customization

📊Amazon QuickSight now lets dashboard viewers customize tables and pivot tables directly in dashboards. Users can sort, reorder, hide or show, and freeze columns without requiring updates from dashboard authors. These per-view adjustments support cross-team collaboration and tailored analysis — for example, sales teams sorting by revenue or finance freezing account columns to retain context. The features are available in Amazon QuickSight Enterprise Edition across supported regions; see the product documentation and blog for guidance.

AWS Glue zero-ETL now supports CloudFormation & CDK

🚀 AWS Glue zero-ETL integrations now support AWS CloudFormation and the AWS Cloud Development Kit (CDK), enabling creation and management of zero-ETL integrations using infrastructure as code. This lets teams ingest data from DynamoDB and enterprise SaaS sources (Salesforce, ServiceNow, SAP, Zendesk) into Amazon Redshift, S3, and S3 Tables. CloudFormation and CDK support makes it easier to deploy, update, and version-control zero-ETL configurations consistently across multiple AWS accounts.